$ rpki-client -vvf repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.mft File: 41820333252DF92B1DBA238F558CC8D822C768EF.mft (raw, json) Hash identifier: Z/1IyceBTjmadyedD3FaIoKn3xgbtKHUwOKUJAqP9d8= Subject key identifier: BE:CB:F4:09:36:45:24:48:02:26:20:CC:44:B6:1E:E2:61:97:95:28 Authority key identifier: 41:82:03:33:25:2D:F9:2B:1D:BA:23:8F:55:8C:C8:D8:22:C7:68:EF Certificate issuer: /CN=41820333252DF92B1DBA238F558CC8D822C768EF Certificate serial: 19652EA01297EA40C6C275B01FBA78BCD3FE94F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41820333252DF92B1DBA238F558CC8D822C768EF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.mft Manifest number: 0182 Signing time: Tue 01 Jul 2025 10:21:09 +0000 Manifest this update: Tue 01 Jul 2025 10:16:09 +0000 Manifest next update: Fri 04 Jul 2025 16:31:09 +0000 Files and hashes: 1: 41820333252DF92B1DBA238F558CC8D822C768EF.crl (hash: lAlwE+USwH+rjex4QGMKGkApNLuLvoY2cT99geV01Po=) 2: 3130332e36392e36312e302f32342d3234203d3e20313530353239.roa (hash: eG3L50RlSnDUuOVwkVlYnQebEQc3JXkDObYN4u0w6z8=) 3: 3130332e36392e36302e302f32342d3234203d3e20313530353239.roa (hash: Y9d4RL5lwPJKIYYz/S5GmByBdyf8v8c66+665Lm4cNc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.crl rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41820333252DF92B1DBA238F558CC8D822C768EF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 16:31:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:65:2e:a0:12:97:ea:40:c6:c2:75:b0:1f:ba:78:bc:d3:fe:94:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41820333252DF92B1DBA238F558CC8D822C768EF Validity Not Before: Jul 1 10:16:09 2025 GMT Not After : Jul 4 16:31:09 2025 GMT Subject: CN=BECBF40936452448022620CC44B61EE261979528 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:94:a8:1c:35:80:1d:99:95:16:e4:3f:a3:d4: 92:18:d3:a5:50:01:1d:0b:43:64:bb:c7:00:ac:49: 11:20:76:81:3e:51:d8:5e:a5:a3:bc:12:8c:57:87: 13:95:7c:3a:2e:cc:dc:7b:ec:31:24:eb:2a:5b:05: 18:e8:8d:70:83:bf:d7:f9:88:32:ee:1f:74:d8:99: 5a:b3:65:2e:5b:e7:14:44:82:64:59:25:0d:59:2f: 9e:29:de:4b:3d:f9:29:9f:02:b4:e4:4e:0e:32:f2: e3:67:25:17:22:f3:77:d8:20:b3:13:34:e5:ab:58: c8:6d:80:a7:fb:4b:a2:29:2b:46:b5:da:4e:c4:1a: e8:98:66:42:4b:e1:c6:7a:2a:f6:79:cd:1e:03:3e: 7a:a9:e8:75:70:5d:ba:cd:f4:2b:f6:98:00:6c:fa: 5f:cf:ae:25:bb:3d:50:0d:77:59:75:9a:ca:c8:3e: a3:32:62:68:21:7d:24:9e:9b:40:0b:8b:2e:b4:07: a8:11:72:d7:41:e4:46:65:f4:71:08:06:03:ab:05: da:15:e8:ae:a2:0e:bf:a2:fe:0b:06:a7:00:56:bc: c5:fb:87:cb:02:e1:2b:5e:13:80:cc:3e:c4:ea:3d: 33:3f:ba:2d:0f:ee:17:50:64:e3:ba:e0:95:5f:72: 86:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:CB:F4:09:36:45:24:48:02:26:20:CC:44:B6:1E:E2:61:97:95:28 X509v3 Authority Key Identifier: keyid:41:82:03:33:25:2D:F9:2B:1D:BA:23:8F:55:8C:C8:D8:22:C7:68:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41820333252DF92B1DBA238F558CC8D822C768EF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8c:9f:b2:fb:f7:ca:2c:34:a2:08:8c:fa:eb:bb:bc:25:fb:c1: 14:0a:5b:f4:4b:a1:d3:c7:19:32:24:35:2d:ae:89:25:b8:db: 8e:9b:1c:d2:c0:d4:bc:51:86:33:af:29:9d:e2:54:ca:21:28: f6:80:fa:c2:be:3f:26:c4:a6:22:7e:54:33:0d:c7:ce:53:b5: 4e:85:1d:1a:ed:76:41:99:86:c1:16:8e:69:f2:b6:01:d5:c7: 34:90:7f:32:0a:c9:34:c9:02:27:93:01:ad:98:6f:de:2e:be: b1:bd:11:66:b8:b6:4b:d0:9b:d6:96:c7:45:11:97:39:99:92: aa:cd:51:5c:4d:52:96:ca:d4:32:60:57:7c:5c:8b:75:41:b4: fe:ec:9e:d4:f8:84:2d:72:30:03:fd:55:5a:aa:2b:01:16:f4: 33:41:c7:0a:ea:13:8d:67:69:9b:54:ce:74:50:e6:cb:1d:0b: 22:db:59:77:0b:38:b1:ee:33:6b:6a:d8:da:60:5b:6a:08:4d: 43:00:1c:fc:72:20:ee:65:be:e9:aa:eb:08:5e:9e:b2:c8:c4: ec:2a:c1:87:ec:5a:5a:aa:3c:7d:b0:cc:cd:79:20:d2:6d:ca: cf:be:81:df:9b:4e:b0:3b:e0:95:92:79:3a:8d:c2:6b:96:19: 14:dd:36:cd -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGWUuoBKX6kDGwnWwH7p4vNP+lPkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDE4MjAzMzMyNTJERjkyQjFEQkEyMzhGNTU4Q0M4RDgy MkM3NjhFRjAeFw0yNTA3MDExMDE2MDlaFw0yNTA3MDQxNjMxMDlaMDMxMTAvBgNV BAMTKEJFQ0JGNDA5MzY0NTI0NDgwMjI2MjBDQzQ0QjYxRUUyNjE5Nzk1MjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNlKgcNYAdmZUW5D+j1JIY06VQ AR0LQ2S7xwCsSREgdoE+UdhepaO8EoxXhxOVfDouzNx77DEk6ypbBRjojXCDv9f5 iDLuH3TYmVqzZS5b5xREgmRZJQ1ZL54p3ks9+SmfArTkTg4y8uNnJRci83fYILMT NOWrWMhtgKf7S6IpK0a12k7EGuiYZkJL4cZ6KvZ5zR4DPnqp6HVwXbrN9Cv2mABs +l/PriW7PVANd1l1msrIPqMyYmghfSSem0ALiy60B6gRctdB5EZl9HEIBgOrBdoV 6K6iDr+i/gsGpwBWvMX7h8sC4SteE4DMPsTqPTM/ui0P7hdQZOO64JVfcoY9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUvsv0CTZFJEgCJiDMRLYe4mGXlSgwHwYDVR0j BBgwFoAUQYIDMyUt+SsduiOPVYzI2CLHaO8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NTk3MWFlOS01Y2RkLTRkNDEtYjYyYS01YzI4NGFhODA5OGUvMC80MTgyMDMzMzI1 MkRGOTJCMURCQTIzOEY1NThDQzhEODIyQzc2OEVGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDE4MjAzMzMyNTJERjkyQjFEQkEyMzhGNTU4Q0M4RDgyMkM3 NjhFRi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODU5NzFhZTktNWNkZC00ZDQxLWI2 MmEtNWMyODRhYTgwOThlLzAvNDE4MjAzMzMyNTJERjkyQjFEQkEyMzhGNTU4Q0M4 RDgyMkM3NjhFRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIyfsvv3yiw0ogiM+uu7vCX7wRQKW/RLodPH GTIkNS2uiSW4246bHNLA1LxRhjOvKZ3iVMohKPaA+sK+PybEpiJ+VDMNx85TtU6F HRrtdkGZhsEWjmnytgHVxzSQfzIKyTTJAieTAa2Yb94uvrG9EWa4tkvQm9aWx0UR lzmZkqrNUVxNUpbK1DJgV3xci3VBtP7sntT4hC1yMAP9VVqqKwEW9DNBxwrqE41n aZtUznRQ5ssdCyLbWXcLOLHuM2tq2NpgW2oITUMAHPxyIO5lvumq6whenrLIxOwq wYfsWlqqPH2wzM15INJtys++gd+bTrA74JWSeTqNwmuWGRTdNs0= -----END CERTIFICATE-----Generated at Thu Jul 3 00:53:08 2025 by rpki-client